Identify, Protect, Detect — Lessons from the NIST Cybersecurity Framework
In this exclusive podcast series, “Take Back Control of Your Cybersecurity Now,” Paul Ferrillo and Christophe Veltsos share insights from their recently released book of the same name. By explaining top threats and cyber risks in plain language, Ferrillo and Veltsos not only illustrate today’s perilous landscape, but also build a convincing case for why cybersecurity must be a key business priority.
If you are a regular listener of the podcast, then you know by now that Paul and Chris Veltsos emphasize the importance of using clear, simple language to describe cyberthreats so that all parties — including C-suite executives and board members without technical expertise — can understand risks and make informed decisions.
This episode focuses on the National Institute of Standards and Technology (NIST), which took this same approach when it first released its easy-to-read and understand Cybersecurity Framework (CSF) in 2014, and also when it updated that document earlier this year.
Despite being mandatory only for federal government agencies, the NIST CSF has been adapted and adopted by large numbers of private organizations across a range of industries. Listen now to learn why the framework has been so widely received, which sections are most critical and how the NIST CSF can be used to bring boards and executives into the security conversation.
Visit the NIST CSF website to download the complete framework and learn even more.